Seems a bit insecure to me. Shouldn't that page be protected by the main
login? Linksys uses a .htaccess like mech for authentication. I'll
attempt to try it when I get home tonight, but I think the button is a
POST on a form.
Ed
Robert Citek wrote:
Just found out that I can reboot the Netgear WG602 with the following
command in bash:
$ echo "GET /reboot.htm HTTP/1.0" > /dev/tcp/192.168.0.1/80
192.168.0.1 is the IP address and 80 is the HTTP port. Notice that
there's no web browser, no authentication, and no encryption. I
wonder what other pages are open to changing? "reset to factory
defaults"?
Regards,
- Robert
http://www.cwelug.org/downloads
Help others get OpenSource software. Distribute FLOSS
for Windows, Linux, *BSD, and MacOS X with BitTorrent
_______________________________________________
CWE-LUG mailing list
[email protected]
http://www.cwelug.org/
http://www.cwelug.org/archives/
http://www.cwelug.org/mailinglist/
--
Ed Howland
WDT Solutions, LLC.
[EMAIL PROTECTED]
(314) 962-0766
_______________________________________________
CWE-LUG mailing list
[email protected]
http://www.cwelug.org/
http://www.cwelug.org/archives/
http://www.cwelug.org/mailinglist/
